diff --git a/roles/ntpd/defaults/main.yml b/roles/ntpd/defaults/main.yml
new file mode 100644
index 0000000..67789e7
--- /dev/null
+++ b/roles/ntpd/defaults/main.yml
@@ -0,0 +1,3 @@
+---
+ntpd_servers:
+  - time.foo.sh
diff --git a/roles/ntpd/handlers/main.yml b/roles/ntpd/handlers/main.yml
new file mode 100644
index 0000000..d85d8c7
--- /dev/null
+++ b/roles/ntpd/handlers/main.yml
@@ -0,0 +1,5 @@
+---
+- name: Restart ntpd
+  ansible.builtin.service:
+    name: ntpd
+    state: restarted
diff --git a/roles/ntpd/tasks/main.yml b/roles/ntpd/tasks/main.yml
new file mode 100644
index 0000000..384df39
--- /dev/null
+++ b/roles/ntpd/tasks/main.yml
@@ -0,0 +1,16 @@
+---
+- name: Create config
+  ansible.builtin.template:
+    dest: /etc/ntpd.conf
+    src: ntpd.conf.j2
+    mode: "0644"
+    owner: root
+    group: "{{ ansible_wheel }}"
+    validate: "/usr/sbin/ntpd -f %s -n"
+  notify: Restart ntpd
+
+- name: Enable service
+  ansible.builtin.service:
+    name: ntpd
+    state: started
+    enabled: true
diff --git a/roles/ntpd/templates/ntpd.conf.j2 b/roles/ntpd/templates/ntpd.conf.j2
new file mode 100644
index 0000000..8802991
--- /dev/null
+++ b/roles/ntpd/templates/ntpd.conf.j2
@@ -0,0 +1,11 @@
+{% if ntpd_listen is defined %}
+# listen to network
+{%   for listen in ntpd_listen %}
+listen on {{ listen }}
+{%   endfor %}
+
+{% endif %}
+# remote servers
+{% for server in ntpd_servers %}
+server {{ server }}
+{% endfor %}